Breaking Bitbucket: Pre Auth Remote Command Execution (CVE-2022-36804)
https://ift.tt/qeX8P3F
Submitted September 22, 2022 at 09:55AM by Mempodipper
via reddit https://ift.tt/5To8pUn
https://ift.tt/qeX8P3F
Submitted September 22, 2022 at 09:55AM by Mempodipper
via reddit https://ift.tt/5To8pUn
Assetnote
Breaking Bitbucket: Pre Auth Remote Command Execution (CVE-2022-36804)
Application security issues found by Assetnote
Exploiting Web3’s Hidden Attack Surface: Universal XSS on Netlify’s Next.js Library
https://ift.tt/uI0zXVU
Submitted September 22, 2022 at 09:56AM by Mempodipper
via reddit https://ift.tt/dhRGjgA
https://ift.tt/uI0zXVU
Submitted September 22, 2022 at 09:56AM by Mempodipper
via reddit https://ift.tt/dhRGjgA
Sam Curry | Web Application Security Researcher
Exploiting Web3’s Hidden Attack Surface: Universal XSS on Netlify’s Next.js Library
On August 24th, 2022, we reported a vulnerability to Netlify affecting their Next.js "netlify-ipx" repository which would allow an attacker to achieve persistent cross-site noscripting...
Bypassing FileBlockExecutable in Sysmon 14.0: A Lesson In Analyzing Assumptions
https://ift.tt/B3DYtPf
Submitted September 22, 2022 at 02:22PM by darronofsky
via reddit https://ift.tt/lFnThEW
https://ift.tt/B3DYtPf
Submitted September 22, 2022 at 02:22PM by darronofsky
via reddit https://ift.tt/lFnThEW
Huntandhackett
Bypassing FileBlockExecutable in Sysmon 14.0: A Lesson In Analyzing Assumptions
Understanding the operation and limitations of Sysmon's first preventive mechanism: the FileBlockExecutable event.
Raspberry Robin’s Roshtyak: A Little Lesson in Trickery
https://ift.tt/s9DT7ZN
Submitted September 22, 2022 at 04:23PM by stashing_the_smack
via reddit https://ift.tt/sFPz61V
https://ift.tt/s9DT7ZN
Submitted September 22, 2022 at 04:23PM by stashing_the_smack
via reddit https://ift.tt/sFPz61V
Avast Threat Labs
Raspberry Robin’s Roshtyak: A Little Lesson in Trickery - Avast Threat Labs
We take a deep dive into Roshtyak, the DLL backdoor payload associated with Raspberry Robin. Roshtyak is full of anti-analysis tricks. Some are well-known, and some we have never seen before. From a technical perspective, the lengths Roshtyak takes to protect…
Making HTTP header injection critical via response queue poisoning
https://ift.tt/aAEehti
Submitted September 22, 2022 at 07:35PM by albinowax
via reddit https://ift.tt/wmjf9AU
https://ift.tt/aAEehti
Submitted September 22, 2022 at 07:35PM by albinowax
via reddit https://ift.tt/wmjf9AU
PortSwigger Research
Making HTTP header injection critical via response queue poisoning
HTTP header injection is often under-estimated and misclassified as a moderate severity flaw equivalent to XSS or worse, Open Redirection. In this post, I'll share a simple technique I used to take a
Using Your Device for Unbreakable Okta MFA
https://ift.tt/5pTwDAr
Submitted September 22, 2022 at 07:35PM by sullivanmatt
via reddit https://ift.tt/ZniytcV
https://ift.tt/5pTwDAr
Submitted September 22, 2022 at 07:35PM by sullivanmatt
via reddit https://ift.tt/ZniytcV
Matt's Life Bytes
Using Your Existing Devices for Phish-Proof MFA in Okta
A string of recent attacks has made it clear that ‘classic’ ways of doing MFA are not sufficient. This guide provides instructions for setting up a MacBook Pro’s Touch ID fingerpr…
A technical analysis of the leaked LockBit 3.0 builder
https://ift.tt/qHtcm7D
Submitted September 22, 2022 at 07:28PM by CyberMasterV
via reddit https://ift.tt/oBV7Auf
https://ift.tt/qHtcm7D
Submitted September 22, 2022 at 07:28PM by CyberMasterV
via reddit https://ift.tt/oBV7Auf
Tool Release – Project Kubescout: Adding Kubernetes Support to Scout Suite
https://ift.tt/iLZC42p
Submitted September 23, 2022 at 01:33AM by digicat
via reddit https://ift.tt/JF8i1lT
https://ift.tt/iLZC42p
Submitted September 23, 2022 at 01:33AM by digicat
via reddit https://ift.tt/JF8i1lT
NCC Group Research Blog
Tool Release – Project Kubescout: Adding Kubernetes Support to Scout Suite
tl;dr You can now have Scout Suite scan not only your cloud environments, but your Kubernetes clusters. Just have your kubeconfig ready and run the following commands: $ pip3 install –user $ …
Passkeys - an opinionated, “quick-start” guide to using passkeys
https://ift.tt/cs0Fl87
Submitted September 23, 2022 at 01:16PM by Gallus
via reddit https://ift.tt/wbLBqFg
https://ift.tt/cs0Fl87
Submitted September 23, 2022 at 01:16PM by Gallus
via reddit https://ift.tt/wbLBqFg
www.imperialviolet.org
ImperialViolet - Passkeys
BigQuery SQL Injection Cheat Sheet
https://ift.tt/LsaHpQW
Submitted September 23, 2022 at 01:14PM by Gallus
via reddit https://ift.tt/br9gndA
https://ift.tt/LsaHpQW
Submitted September 23, 2022 at 01:14PM by Gallus
via reddit https://ift.tt/br9gndA
Medium
BigQuery SQL Injection Cheat Sheet
Last year, we (My researcher partner on this topic, Anil and me) and found a SQL injection vulnerability on a target at Synack which was…
metamaska - malevolent payload classifier
https://ift.tt/UNeKAjC
Submitted September 23, 2022 at 03:14PM by c0daman
via reddit https://ift.tt/rAmWfiC
https://ift.tt/UNeKAjC
Submitted September 23, 2022 at 03:14PM by c0daman
via reddit https://ift.tt/rAmWfiC
GitHub
GitHub - dogancanbakir/metamaska: μετάμάσκα - malevolent payload classifier
μετάμάσκα - malevolent payload classifier. Contribute to dogancanbakir/metamaska development by creating an account on GitHub.
ModSecurity WAF bypasses via 0days
https://ift.tt/tkI70Vo
Submitted September 23, 2022 at 07:39PM by Gallus
via reddit https://ift.tt/GYKBWE2
https://ift.tt/tkI70Vo
Submitted September 23, 2022 at 07:39PM by Gallus
via reddit https://ift.tt/GYKBWE2
Medium
WAF bypasses via 0days
based on findings from a live hacking event
How to secure against forced browsing info disclosures
https://ift.tt/bF7duzH
Submitted September 23, 2022 at 07:56PM by pm_me_security_jobs
via reddit https://ift.tt/oT3ABSM
https://ift.tt/bF7duzH
Submitted September 23, 2022 at 07:56PM by pm_me_security_jobs
via reddit https://ift.tt/oT3ABSM
Tool for Sizing Solidity Smart Contract Audits
https://ift.tt/DjKWGZi
Submitted September 23, 2022 at 11:02PM by kruksym
via reddit https://ift.tt/fvPiqZy
https://ift.tt/DjKWGZi
Submitted September 23, 2022 at 11:02PM by kruksym
via reddit https://ift.tt/fvPiqZy
CoinFabrik
Sizing Solidity Audits
When a customer asks for a solidity audit, we need a proper estimation of the required hours to complete the task in order to schedule it. In order to do
CVE-2022-35256 - HTTP Request Smuggling in NodeJS
https://ift.tt/7Kwlsj6
Submitted September 24, 2022 at 12:35AM by VVX7
via reddit https://ift.tt/YxGDTXj
https://ift.tt/7Kwlsj6
Submitted September 24, 2022 at 12:35AM by VVX7
via reddit https://ift.tt/YxGDTXj
f33d by Prelude
CVE-2022-35256
HTTP Request Smuggling in NodeJS
Malware Targeting dYdX Crypto Exchange
https://ift.tt/aRWcwQb
Submitted September 24, 2022 at 02:10AM by louis11
via reddit https://ift.tt/B3UHPoc
https://ift.tt/aRWcwQb
Submitted September 24, 2022 at 02:10AM by louis11
via reddit https://ift.tt/B3UHPoc
blog.phylum.io
Malware Targeting dYdX Crypto Exchange
Shortly before 12:00 PM UTC on September 23, 2022, our platform alerted us to a malicious package publication for packages owned by dYdX.
Hacking the PS4 / PS5 through the PS2 Emulator - Part 1 - Escape
https://ift.tt/uOqgPyv
Submitted September 24, 2022 at 11:33AM by digicat
via reddit https://ift.tt/39P7x4I
https://ift.tt/uOqgPyv
Submitted September 24, 2022 at 11:33AM by digicat
via reddit https://ift.tt/39P7x4I
The “Privileges Required” trap in CVSS 3.1
https://ift.tt/Ee0BHio
Submitted September 24, 2022 at 09:04PM by DebugDucky
via reddit https://ift.tt/lOV10sM
https://ift.tt/Ee0BHio
Submitted September 24, 2022 at 09:04PM by DebugDucky
via reddit https://ift.tt/lOV10sM
Charlie's blog
The “Privileges Required” trap in CVSS 3.1
Should Privileges Required be set as “Low” when an application has open registration? Common wisdom says yes, but the specification disagrees.
Zero Trust - From Zero to One Hundred
https://ift.tt/eWYRSAX
Submitted September 25, 2022 at 03:20AM by Khryse
via reddit https://ift.tt/xSei35d
https://ift.tt/eWYRSAX
Submitted September 25, 2022 at 03:20AM by Khryse
via reddit https://ift.tt/xSei35d
Sleep obfuscation technique leveraging waitable timers to evade memory scanners.
https://ift.tt/9ojuCsv
Submitted September 25, 2022 at 04:59PM by Idov31
via reddit https://ift.tt/VWBOXxp
https://ift.tt/9ojuCsv
Submitted September 25, 2022 at 04:59PM by Idov31
via reddit https://ift.tt/VWBOXxp
GitHub
GitHub - Idov31/Cronos: PoC for a new sleep obfuscation technique leveraging waitable timers to evade memory scanners.
PoC for a new sleep obfuscation technique leveraging waitable timers to evade memory scanners. - GitHub - Idov31/Cronos: PoC for a new sleep obfuscation technique leveraging waitable timers to evad...
Cpplumber 0.1.0 - Static analysis tool based on clang, which detects source-to-binary information leaks in C and C++ projects.
https://ift.tt/ZByT9Xo
Submitted September 25, 2022 at 07:57PM by ergrelet
via reddit https://ift.tt/eG64nO0
https://ift.tt/ZByT9Xo
Submitted September 25, 2022 at 07:57PM by ergrelet
via reddit https://ift.tt/eG64nO0
GitHub
GitHub - ergrelet/cpplumber: Static analysis tool based on clang, which detects source-to-binary information leaks in C and C++…
Static analysis tool based on clang, which detects source-to-binary information leaks in C and C++ projects - GitHub - ergrelet/cpplumber: Static analysis tool based on clang, which detects source-...